Yubico Forum

Hi,

I am attempting to increase the security of the adminstrative user on my company's computers. The administrator is a local account on the computers.
I want to install a computer using Windows Deployment Server and configure the local administrative account to require logon with a YubiKey using a predetermined HMAC-SHA1 code without having to log in and perform the configuration myself.

That way, I can hand out identical YubiKeys to the people who has to have access to the administrative user and make sure they work on every computer.

Does anyone know of a way to configure the YubiKey Logon programmatically?

I believe with the Yubikey Personalization GUI you can set specific settings and have keys "programmed automatically on insertion", guaranteeing the same codes from each key. From my limited knowledge of the utility, this is a primary focus of the design. I've run across several sections of documentation that refer to what you're asking for.